Rhdh: catalog-import function leaks credentials to frontend
CVE-2023-6944

5.7MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Developer Hub
Vendor: CVE Published:; 4 January 2024

Summary

A flaw was found in the Red Hat Developer Hub (RHDH). The catalog-import function leaks GitLab access tokens on the frontend when the base64 encoded GitLab token includes a newline at the end of the string. The sanitized error can display on the frontend, including the raw access token. Upon gaining access to this token and depending on permissions, an attacker could push malicious code to repositories, delete resources in Git, revoke or generate new keys, and sign code illegitimately.

References

https://access.redhat.com/security/cve/CVE-2023-6944

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2255204

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 4, 2024
Vulnerability Reserved
Dec 19, 2023

Credit

Red Hat would like to thank Josephine Pfeiffer for reporting this issue.